Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
endpoint security vulnerabilities and exploits
(subscribe to this query)
3.5
CVSSv2
CVE-2021-23881
A stored cross site scripting vulnerability in ePO extension of McAfee Endpoint Security (ENS) before 10.7.0 February 2021 Update allows an ENS ePO administrator to add a script to a policy event which will trigger the script to be run through a browser block page when a local no...
Mcafee Endpoint Security
1.9
CVSSv2
CVE-2021-23882
Improper Access Control vulnerability in McAfee Endpoint Security (ENS) for Windows before 10.7.0 February 2021 Update allows local administrators to prevent the installation of some ENS files by placing carefully crafted files where ENS will be installed. This is only applicable...
Mcafee Endpoint Security
3.6
CVSSv2
CVE-2020-7265
Privilege Escalation vulnerability in McAfee Endpoint Security (ENS) for Mac before 10.6.9 allows local users to delete files the user would otherwise not have access to via manipulating symbolic links to redirect a McAfee delete action to an unintended file. This is achieved thr...
Mcafee Endpoint Security
4.3
CVSSv2
CVE-2021-23878
Clear text storage of sensitive Information in memory vulnerability in McAfee Endpoint Security (ENS) for Windows before 10.7.0 February 2021 Update allows a local user to view ENS settings and credentials via accessing process memory after the ENS administrator has performed spe...
Mcafee Endpoint Security
2.1
CVSSv2
CVE-2021-23880
Improper Access Control in attribute in McAfee Endpoint Security (ENS) for Windows before 10.7.0 February 2021 Update allows authenticated local administrator user to perform an uninstallation of the anti-malware engine via the running of a specific command with the correct param...
Mcafee Endpoint Security
4.9
CVSSv2
CVE-2021-23883
A Null Pointer Dereference vulnerability in McAfee Endpoint Security (ENS) for Windows before 10.7.0 February 2021 Update allows a local administrator to cause Windows to crash via a specific system call which is not handled correctly. This varies by machine and had partial prote...
Mcafee Endpoint Security
2.1
CVSSv2
CVE-2020-7251
Improper access control vulnerability in Configuration Tool in McAfee Mcafee Endpoint Security (ENS) before 10.6.1 February 2020 Update allows local users to disable security features via unauthorised use of the configuration tool from older versions of ENS.
Mcafee Endpoint Security
NA
CVE-2023-23561
Stormshield Endpoint Security 2.3.0 up to and including 2.3.2 has Incorrect Access Control: authenticated users can read sensitive information.
Stormshield Endpoint Security
6.1
CVSSv2
CVE-2019-3582
Privilege Escalation vulnerability in Microsoft Windows client in McAfee Endpoint Security (ENS) 10.6.1 and previous versions allows local users to gain elevated privileges via a specific set of circumstances.
Mcafee Endpoint Security
4.6
CVSSv2
CVE-2021-35957
Stormshield Endpoint Security Evolution 2.0.0 up to and including 2.0.2 does not accomplish the intended defense against local administrators who can replace the Visual C++ runtime DLLs (in %WINDIR%\system32) with malicious ones.
Stormshield Endpoint Security
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33572
CVE-2024-24919
CVE-2024-0230
CVE-2024-32714
HTML injection
local file inclusion
CVE-2024-31098
CVE-2024-31244
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »